Third party management must include: assessing risk, conducting due diligence and analysis, delivering training, invoking controls, ongoing monitoring, and periodic re-evaluation. A consistent method to risk score each relationship and a book of record for each third party ensures a systemic understanding of relevant information and a well documented audit trail.

Developed by OCEG with contributions from Hiperos and MetricStream.

Share

Related Content

You need an All Access Pass to get Illustration – 3rd Party Series #2 – 3rd Party Anti-Corruption Management